On Sun, Oct 05, 2003 at 01:30:54PM +0200, Martin Daur wrote: > Martin Daur wrote: > >Hallo, > > >by the way masqurading works fine for other physical machines in the > >local network (and if they are running vps too). there must be a problem > >with masq of local packets. > > the Linux kernel including 2.4.22 does not masquerade lokal created ip > packets (eg. from an vps). > in connection with ip4chbind, masquerading of these packetes gets more > important if you do not want to assign a public ip to every vserver or > run the vservers on additional physical hardware inside the local lan.
okay, I found that out yesterday as I tested the setup you want to use, but I'm not sure if local masquerading (on aliased interfaces) will work as expected at all ... guess we have to test ... > A patch from Stefan Metzmacher can be found at: > http://lists.netfilter.org/pipermail/netfilter-devel/2002-January/006505.html will adapt that to the recent kernels, anybody willing to test that with several setups? best, Herbert > cu > > -- > Martin Daur Tel: 07344/6915 0175/8545882 * Please Encrypt * > Weilerstr. 48/6 Fax: 07344/kaputt * Certificates, * > D-89143 Blaubeuren ICQ: 39532297 * GnuPG, PGP * > Germany Web: mdaur.homeip.net/martin ******************
